The auditeventpolicysubcategories object is used by an audit event policy
subcategories test to define those objects to evaluate based on a specified state.
The Check enumeration type defines acceptable check values,
which are used to determine the final result of something
based on the results of individual components.
The ClassDirectives presents a set of flags that describe
what information has been included in the results document
for a specific OVAL Definition class.
The cmdlet_object is used by a cmdlet_test to identify the set of cmdlets to use and
the parameters to provide to them for checking the state of a system.
The Criteria describes a container for a set of sub Criteria,
Criteria, Criterion, or ExtendDefinition elements
allowing complex logical trees to be constructed.
The DocumentGenerator defines an element that is used to hold
information about when a particular OVAL document was compiled,
what version of the schema was used,
what tool compiled the document, and
what version of that tools was used.
The EntityItemAdstypeType restricts a string value
to a specific set of values that describe the possible types
associated with an Active Directory attribute.
The EntityItemCapabilityType restricts a string value to a specific set of values
that describe POSIX capability types associated with a process service.
The EntityItemEncryptMethodType restricts a string value to a set
that corresponds to the allowed encrypt methods
used for protected passwords in a shadow file.
The EntityItemLdaptypeType restricts a string value
to a specific set of values that specify the different types
of information that an ldap attribute can represent.
The EntityItemPermissionCompareType restricts a string value
to more, less, or same which specifies if an actual permission is different
than the expected permission (more or less restrictive) or if the permission is the same.
The EntityItemPermissionCompareType complex type restricts a string value
to more, less, or same which specifies if an actual permission is different
than the expected permission (more or less restrictive) or if the permission is the same.
The EntityItemPlistTypeType restricts a string value to the seven values
CFString, CFNumber, CFBoolean, CFDate, CFData, CFArray, and CFDictionary
that specify the type of the value associated with a property list preference key.
The EntityItemRoutingTableFlagsType restricts a string value to a specific set of values
that describe the flags associated with a routing table entry.
The EntityItemRpmVerifyResultType restricts a string value
to the set of possible outcomes of checking an attribute of a file
included in an RPM against the actual value of that attribute in the RPM database.
The EntityItemWaitStatusType restricts a string value to two values,
either wait or nowait, that specify whether the server that is invoked by inetd
will take over the listening socket associated with the service,
and whether once launched, inetd will wait for that server to exit, if ever,
before it resumes listening for new service requests.
The EntityItemXinetdTypeStatusType restricts a string value to five values,
either RPC, INTERNAL, UNLISTED, TCPMUX, or TCPMUXPLUS
that specify the type of service registered in xinetd.
The EntityObjectFieldType defines an element with simple content that represents
a named field in a record that may contain any number of named fields.
The EntityStateComplexBaseType complex type is an abstract type
that extends the EntityComplexBaseType and is used by some entities within an OVAL State.
The EntityObjectRegistryHive type restricts a string value
to a specific set of values:
HKEY_CLASSES_ROOT, HKEY_CURRENT_CONFIG, HKEY_CURRENT_USER,
HKEY_LOCAL_MACHINE, and HKEY_USERS.
The EntityStateAdstypeType restricts a string value
to a specific set of values that specify the different types
of information that an active directory attribute can represents.
The EntityStateCapabilityType restricts a string value to a specific set of values
that describe POSIX capability types associated with a process service.
The EntityStateComplexBaseType complex type is an abstract type
that extends the EntityComplexBaseType and is used by some entities within an OVAL State.
The EntityStateEncryptMethodType restricts a string value to a set
that corresponds to the allowed encrypt methods
used for protected passwords in a shadow file.
The EntityStateWaitStatusType restricts a string value to two values,
either wait or nowait, that specify whether the server that is invoked by inetd
will take over the listening socket associated with the service,
and whether once launched, inetd will wait for that server to exit, if ever,
before it resumes listening for new service requests.
The EntityStateGconfTypeType restricts a string value to the seven values
that specify the datatype of the value associated with a GConf preference key.
The EntityStateLdaptypeType restricts a string value
to a specific set of values that specify the different types
of information that an ldap attribute can represent.
The EntityStatePermissionCompareType restricts a string value
to more, less, or same which specifies if an actual permission is different
than the expected permission (more or less restrictive) or if the permission is the same.
The EntityStatePermissionCompareType complex type restricts a string value
to more, less, or same which specifies if an actual permission is different
than the expected permission (more or less restrictive) or if the permission is the same.
The EntityStatePlistTypeType restricts a string value to the seven values
CFString, CFNumber, CFBoolean, CFDate, CFData, CFArray, and CFDictionary
that specify the datatype of the value associated with a property list preference key.
The EntityStateRegistryHive restricts a string value to
a specific set of values:
HKEY_CLASSES_ROOT, HKEY_CURRENT_CONFIG, HKEY_CURRENT_USER,
HKEY_LOCAL_MACHINE, and HKEY_USERS.
The EntityStateRoutingTableFlagsType restricts a string value to a specific set of values
that describe the flags associated with a routing table entry.
The EntityStateRpmVerifyResultType restricts a string value
to the set of possible outcomes of checking an attribute of a file
included in an RPM against the actual value of that attribute in the RPM database.
The EntityStateXinetdTypeStatusType restricts a string value to five values,
either RPC, INTERNAL, UNLISTED, TCPMUX, or TCPMUXPLUS
that specify the type of service registered in xinetd.
The environmentvariable58 object is used by an environmentvariable test
to define the specific environment variable(s) and process IDs to be evaluated.
The environmentvariable state contains three entities that are used
to check the name of the specified environment variable,
the process ID of the process from which the environment variable
was retrieved, and the value associated with the environment variable.
The environmentvariable test element is used to check an environment variable
for the specified process, which is identified by its process ID, on the system.
The Existence enumeration type defines acceptable existence values,
which are used to determine a result based on the existence
of individual components.
The FileAuditPermissions53Behaviors defines a number of behaviors
that allow a more detailed definition of the fileauditpermissions53_object being specified.
The FileEffectiveRights53Behaviors defines a number of behaviors
that allow a more detailed definition of the fileeffectiverights53_object being specified.
The file extended attribute test is used to check extended attribute values
associated with UNIX files, of the sort returned by the getfattr command
or getxattr() system call.
The Generator type defines an element that is used to hold
information about when a particular OVAL document was compiled,
what version of the schema was used,
what tool compiled the document, and
what version of that tools was used.
The iflisteners_state element defines the different information that can be
used to evaluate the specified applications that are listening on interfaces on the system.
The inetlisteningserver510 test is used to check if an application is listening on the network,
either for a new connection or as part of an ongoing connection.
Patches are identified by unique alphanumeric strings, with the patch base code first,
a hyphen, and a number that represents the patch revision number.
The PrinterEffectiveRightsBehaviors defines a number of behaviors
that allow a more detailed definition of the pritnereffectiverights_object being specified.
The pwpolicy59 state defines the different information that can be used to evaluate
the password policy for the target user in the specified directory node.
This test retrieves password policy data from the
'pwpolicy -getpolicy -u target_user [-a username] [-p userpass] [-n directory_node]' output
where username, userpass, and directory_node are optional.
The RecurseFileSystemEnumeration defines the file system limitation of any recursion,
either 'local' limiting data collection to local file systems
(as opposed to file systems mounted from an external system),
or 'defined' to keep any recursion within the file system
that the file_object (path+filename) has specified.
The regkeyauditedpermissions53 object is used by a registry key audited permissions test
to define the objects used to evalutate against the specified state.
The RegkeyAuditPermissions53Behaviors defines a number of behaviors
that allow a more detailed definition of the registrykeyauditedpermissions53 object
being specified.
The RegkeyEffectiveRights53Behaviors defines a number of behaviors
that allow a more detailed definition of the registrykeyeffectiverights53 object
being specified.
The Result enumeration defines the acceptable result values
for the DefinitionResult, CriteriaResult, CriterionResult,
ExtendDefinitionResult, TestResult, and TestedItem constructs.
The routingtable_object is used by a routingtable_test to define the destination IP address(es),
found in a system's primary routing table, to collect.
Deprecated.Deprecated as of version 5.10:
Replaced by the RpmVerifyFileBehaviors and the RpmVerifyPackageBehaviors
and will be removed in version 6.0 of the language.
Deprecated.Deprecated as of version 5.10:
Replaced by the rpmverifyfile item and rpmverifypackage item
and will be removed in version 6.0 of the language.
Deprecated.Deprecated as of version 5.10:
Replaced by the rpmverifyfile object and rpmverifypackage object
and will be removed in version 6.0 of the language.
Deprecated.Deprecated as of version 5.10:
Replaced by the rpmverifyfile state and rpmverifypackage state
and will be removed in version 6.0 of the language.
Deprecated.Deprecated as of version 5.10:
Replaced by the rpmverifyfile test and rpmverifyfile test
and will be removed in version 6.0 of the language.
Deprecated.Deprecated as of version 5.10:
The Source Code Control System (SCCS) is obsolete.
The sccs_test may be removed in a future version of the language.
SccsItem() -
Constructor for class jp.go.aist.six.oval.model.unix.SccsItem
Deprecated.Deprecated as of version 5.10:
The Source Code Control System (SCCS) is obsolete.
The sccs_test may be removed in a future version of the language.
Deprecated.Deprecated as of version 5.10:
The Source Code Control System (SCCS) is obsolete.
The sccs_test may be removed in a future version of the language.
Deprecated.Deprecated as of version 5.10:
The Source Code Control System (SCCS) is obsolete.
The sccs_test may be removed in a future version of the language.
SccsTest() -
Constructor for class jp.go.aist.six.oval.model.unix.SccsTest
The selinuxsecuritycontext object is used by an selinuxsecuritycontext test
to define the security contexts of files and processes to collect
from the local system.
The SharedResourceAuditedPermissionsBehaviors defines a behavior that allows
for a more detailed definition of the sharedresourceauditedpermissions_object being specified.
The sharedresourceauditedpermissions_object is used by a shared resource
audited permissions test to define the objects used to evaluate against the specified state.
The SharedResourceEffectiveRightsBehaviors defines a behavior that allows for
a more detailed definition of the sharedresourceeffectiverights_object being specified.
The sharedresourceeffectiverights_object is used by a shared resource effective rights test
to define the object, in this case a shared resource effective rights object, to be evaluated.
The smf_test is used to check service management facility controlled services
including traditional unix rc level start/kill scrips and inetd daemon services.
SmfTest() -
Constructor for class jp.go.aist.six.oval.model.solaris.SmfTest
The SystemResult holds the evaluation results of the definitions and tests,
as well as a copy of the OVAL System Characteristics
used to perform the evaluation.
The TestResult provides a reference to every item
that matched the object section of the original test
as well as providing an overall test result based on those items.
TestType() -
Constructor for class jp.go.aist.six.oval.model.results.TestType
The textfilecontent54 state contains entities that are used to check
the file path and name, as well as the text block in question
and the value of the subexpressions.
Each Variable object contains the associated datatype and value
which will be substituted into the OVAL Definition
that is referencing this specific variable.
The set of status types that specify whether the server that is invoked by inetd
will take over the listening socket associated with the service,
and whether once launched, inetd will wait for that server to exit, if ever,
before it resumes listening for new service requests.
The wuaupdatesearcher item outlines information defined
through the Search method of the IUpdateSearcher interface
as part of Microsoft's WUA (Windows Update Agent) API.